Initial setup Wireless/Firewall/NAT
-
Ok, I am beyond frustrated with trying to get everything to work. I have search this board trying to find something that relates to what I am trying to do. Toss in confusion and noobness with this system and I am stuck.
This is what I am trying to do:
WRAP Board 1C-2 3 lan with an atheros mini-pci card
Internet <-> [ISP w/DHCP] <-> Cable Modem <-> WAN <-> LAN & OPT1(Wireless)
LAN w/DHCP <-> Switch <-> Client
OPT1(Wireless) w/DHCP Relay to LAN <-> Client
Wide open internal firewall rule on LAN & OPT1
DNS from WAN/ISP DHCP <-> LAN & OPT1
Now this is what my current retail wireless router does…...yet I can't get this to do it! What am I doing wrong? Can anyone point me in the right direction?
-
You describe a nearly factory default config. What is the part that doesn't work exactly?
-
Default config?
So, are you saying that when I install pfsense 1.0 rc1 to my cf card and board that everything should just work? That's not the case with me.
After booting I went to the web gui, connected WAN to the cable modem, set LAN as DHCP server, set OPT1 to AP Mode and set security (I connect just fine), and set all the firewall rules.
Somewhere in the the DNS doesnt get forwarded to any clients and I don't think the DHCP redirection worked (I have since reset to factory in preparation for another go at it)
I tried following the transparent firewall guide for both wireless and lan but then I cant get DHCP on the interface i need.
-
- Flash the CF-Card
- boot it up
- assign the additional interfaces (ath) at webgui interfaces>assign
- bridge the WLAN interface to LAN and set it to AP mode with a valid ssid
- create a rule at the wireless inetrface "pass any protocol from any to any"
This setup basically simulates what most soho router do.
Btw, you don't need dhcp relay, the bridge mode takes care of it to pass dhcp from lan to the ath clients.
If you have dns issues check your servers at status>interfaces and maybe override the dhcp assigned ones at system>general if they don't work.
In a bridged setup all interfaces involved in the bridge have to be up, so you need a link at lan.Besides that, yeah, it "simply works".
-
"In a bridged setup all interfaces involved in the bridge have to be up, so you need a link at lan."
That's what was getting me…...I don't recall seeing that anywhere in the documentation.
Thanks.